2 matches found
CVE-2024-24767
CasaOS-UserService provides user management functionalities to CasaOS. Starting in version 0.4.4.3 and prior to version 0.4.7, CasaOS doesn't defend against password brute force attacks, which leads to having full access to the server. The web application lacks control over the login attempts. Th...
CVE-2024-24767
creationtimestamp| type| source ---|---|--- 2024-03-06 02:44:38+00:00| published-proof-of-concept| https://github.com/IceWhaleTech/CasaOS-UserService/security/advisories/GHSA-c69x-5xmw-v44x 2024-03-06 19:27:07+00:00| seen| https://t.me/ctinow/201694 2024-03-06 19:32:12+00:00| seen|...